Heap-based buffer overflow in Expand3To4Module::run function in Audio File Library (audiofile) allows remote attackers to cause denial of service

Heap-based buffer overflow in Expand3To4Module::run function in Audio File Library (audiofile) allows remote attackers to cause denial of service

CVE-2017-6836 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service (crash) via a crafted file.

Learn more about our Web Application Penetration Testing UK.